CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2008-3455

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0550%
EPSS Percentile30.89th
Published2008年8月4日
Last Modified2026年4月23日

Vulnerability Description

PHP remote file inclusion vulnerability in include/admin.php in JnSHosts PHP Hosting Directory 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the rd parameter.

Affected Platforms (CPE)

📦
Jnshosts

Php Hosting Directory

= 2.0

References & Advisories

🔗 http://securityreason.com/securityalert/4106
🔗 http://www.securityfocus.com/bid/30428
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44108
🔗 https://www.exploit-db.com/exploits/6160
🔗 http://securityreason.com/securityalert/4106
🔗 http://www.securityfocus.com/bid/30428
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44108
🔗 https://www.exploit-db.com/exploits/6160

相關漏洞威脅

CVE-2026-537879.8

Amasty Order Attributes for Magento 2 before version 4.0.0 contains an unauthenticated arbitrary file upload vulnerability that al...

CVE-2019-90029.8

An issue was discovered in Tiny Issue 1.3.1 and pixeline Bugs through 1.3.2c. install/config-setup.php allows remote attackers to ...

CVE-2007-57337.5

Unrestricted file upload vulnerability in upload/upload.php in Japanese PHP Gallery Hosting, when Open directory mode is enabled, ...

CVE-2008-34547.5

JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the ...